Does anyone know if it would be possible to enter an IP somewhere in FMC and see how it would react to it? I am wondering if it is possible to simulate a user accessing an IP address or address range. I have been given a list of IPs from a vendor that we are supposed to whitelist. However, if we already allow access I don't want to make an access policy rule to allow them. Specifically I would like to enter an address like 8.8.8.8 and see if firepower would block or allow that address and then see why it was blocked or not.
First, be familiar enough with your firewall policy to be able to answer this question affirmatively for most use cases.
Second, packet-tracer can indeed confirm the rule set behavior. While it might not pick up latent issues where Snort (Security Intelligence or black lists) would drop the packets, if your vendor's required addresses are on one of those naughty lists you have a bigger problem than your firewall.
First, be familiar enough with your firewall policy to be able to answer this question affirmatively for most use cases.
Second, packet-tracer can indeed confirm the rule set behavior. While it might not pick up latent issues where Snort (Security Intelligence or black lists) would drop the packets, if your vendor's required addresses are on one of those naughty lists you have a bigger problem than your firewall.
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:
.jpg "VIP Master"){kind=icon}
.jpg "Hall of Fame Community Legend"){kind=icon}
